Trust Assessment
Fanvue received a trust score of 100/100, placing it in the Trusted category. This skill has passed all critical security checks and demonstrates strong security practices.
SkillShield's automated analysis identified 1 finding: 0 critical, 0 high, 0 medium, and 0 low severity. Key findings include Broad OAuth Scopes Requested.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on February 13, 2026 (commit 13146e6a). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings1
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| INFO | Broad OAuth Scopes Requested The skill documentation and example code indicate that a wide range of OAuth scopes, including write permissions (e.g., `write:chat`, `write:post`, `write:tracking_links`), can be requested. While necessary for full creator account management, these broad permissions mean a compromised agent or skill could perform significant actions on the user's Fanvue account. Users should be aware of the implications of granting such extensive access. Review the minimum necessary scopes for the skill's intended functionality. Implement granular permission requests where possible, allowing users to grant only the access required for specific tasks. Clearly communicate the implications of each requested scope to the end-user. | LLM | SKILL.md:40 |
Scan History
Embed Code
[](https://skillshield.io/report/6d16fbabff1ce3dd)
Powered by SkillShield